How to configure software (and how you had better not!)

The Infrastructure as Code disruption is not done yet…It is just getting started!

Services are allowed to run in an insecure way. Why is that, and what can we do about it?